52.136.122.89
IP Intelligence Briefing: 52.136.122.89
*Generated via IPDebrief tools: Profile, History, Relationships, Neighbors*
---
**1. Core Profile**
- Risk Assessment:
- Overall Risk: Low (Risk Score: 25)
- Provider Score: 0 (Microsoft Azure infrastructure)
- Threat Indicators: None detected (no malware, spam, or abuse activity).
- Network Role: Microsoft Azure CloudCompute server (hosting HTTP/HTTPS services).
- Geolocation:
- Country: United States (VA, Virginia)
- Coordinates: 37.37°N, -79.46°E (approx. 150km accuracy radius).
- Ownership:
- ASN: 8075 (Microsoft Corporation)
- Subnet: 52.136.0.0/13 (Microsoft Azure backbone).
- Services:
- Open ports: 80 (HTTP), 443 (HTTPS)
- Server banner: `openresty` (likely NGINX-based web server).
---
**2. Observation History**
- Recent Activity:
- Scanned on 2026-06-12 (ports 80, 443).
- Connection failure noted (ICMP blocked, likely network firewall rules).
- No persistent threat signals (0 threat observations in 30 days).
- Risk Trends:
- Stable low risk profile; no upward trend in abuse or malicious activity.
---
**3. Network Relationships**
- Linked Entities:
- Same Network: Microsoft Azure (MSFT) infrastructure.
- Subnet: 52.136.0.0/13 (Microsoft backbone).
- No External Relationships: No linked domains, organizations, or certificates.
---
**4. Subnet Neighborhood**
- Subnet: 52.136.122.89/24
- Abuse Density: 0% (clean subnet).
- Neighbors: 0 active IPs (no sibling IPs detected).
---
**5. Threat Assessment**
- No Malicious Indicators:
- No DNS, TLS, or email threats.
- No blacklisted IPs or campaigns associated.
- Cloud Infrastructure: Legitimate Microsoft Azure server; no signs of misconfiguration or exploitation.
---
**6. Recommendations**
- Monitoring: Continue baseline monitoring for unexpected port activity or configuration changes.
- Firewall Rules: Allow traffic on ports 80/443 for legitimate web services; block ICMP to prevent probing.
- Validation: Confirm the IPβs role in Microsoft Azure to avoid false positives in threat detection.
Conclusion: 52.136.122.89 is a low-risk Microsoft Azure server with no malicious activity detected. No immediate defensive action required, but ongoing monitoring is advised.
This summary was generated by AI and may contain inaccuracies. Verify critical details independently.
π’ Ownership & Registration
| Organization | Microsoft Corporation |
| ASN | AS8075 |
| Network Name | MSFT |
| CIDR Block | 52.132.0.0/14 |
| RIR | ARIN |
| Country | United States |
| Abuse Contact | Available via RDAP |
π DNS Intelligence
| PTR Record | No PTR |
| Forward Confirmed | No β PTR hostname does not resolve back to this IP (weak signal) |
π DNS Hygiene
| Hygiene Score | 20% (Poor) |
| SPF | Not configured |
| DMARC | Not configured |
| FCrDNS | Not verified |
| DNSSEC | Valid |
| CAA | Not configured |
βοΈ Network Classification
| Infrastructure | Infrastructure / Datacenter |
| Service Purpose | Web Server |
| Network Tier | Hosting β Infrastructure provider without advanced routing |
π Services & Open Ports
| Port | Service | Protocol | Banner |
|---|---|---|---|
| 80 | http | tcp | β |
| 443 | https | tcp | β |
| Closed Ports | 22, 25, 3389, 8080, 8443 (2 open / 7 scanned) | ||
| Server | openresty |
| HTTP Title | β |
π TLS Certificate
| SANs | None |
| Valid From | β |
| Valid Until | β |
π― Confidence Breakdown
Per-dimension confidence scores based on source diversity and data freshness
| Dimension | Score | Sources | Observations |
|---|---|---|---|
| threat | 32% | 2 | 3 |
| routing | 13% | 1 | 1 |
| services | 30% | 2 | 3 |
| ownership | 27% | 2 | 3 |
| reputation | 17% | 1 | 2 |
| geolocation | 35% | 2 | 3 |
| Overall | 26% | 10 | 15 |
| Data Coherence | Consistent (100%) |
| Attribution | Moderate (50%) |
| OwnershipFCrDNSGeo ConsensusGeo PlausibleIRR MatchRPKI Valid |
π Observation Timeline π Live
| First Seen | 2026-06-03 00:13:35 UTC |
| Last Seen | 2026-06-21 09:32:12 UTC |
| Profile Built | 2026-06-21 09:48:17 UTC |
| Data Freshness | Live |
| Signal Types | 21 |
| Total Observations | 24 |
Full dossier details are available via our API.